News & Analysis as of

Today's Popular Updates Internal Controls Cybersecurity

A repository for the most well-read content on JD Supra at any given time, along with occasional roundups of popular content by specific topic. Also stop by for monthly recaps of hot articles for the previous... more +
A repository for the most well-read content on JD Supra at any given time, along with occasional roundups of popular content by specific topic. Also stop by for monthly recaps of hot articles for the previous thirty days. less -
A&O Shearman

Judge dismisses most of SEC’s suit against SolarWinds over cybersecurity disclosures

A&O Shearman on

On July 18, 2024, U.S. District Judge Paul Engelmayer of the U.S. District Court for the Southern District of New York issued a comprehensive 107-page opinion that may have significant implications for the Securities and...more

White & Case LLP

Judge Rejects SEC’s Aggressive Approach to Cybersecurity Enforcement

White & Case LLP on

On July 18, 2024, a New York federal judge dismissed most of the US Securities and Exchange Commission’s ("SEC") claims against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer...more

Holland & Knight LLP

Court in SolarWinds Case Blows Down SEC's Cyber Enforcement Authority

Holland & Knight LLP on

The U.S. District Court for the Southern District of New York on July 18, 2024, dismissed most of the SEC's landmark cyber enforcement litigation against SolarWinds Corp. (SolarWinds or the Company) and the Company's Chief...more

Thomas Fox - Compliance Evangelist

Navigating the New Frontier: SEC’s Enforcement Action on RR Donnelley and its Implications for Compliance

Thomas Fox - Compliance Evangelist on

In the ever-evolving compliance landscape, the recent enforcement action by the Securities and Exchange Commission (SEC) against RR Donnelley is a significant case study. This incident underscores the importance of robust...more

Pillsbury Winthrop Shaw Pittman LLP

The Crossroads of Cybersecurity and National Security: Delaying Disclosure of Incidents under the SEC’s New Cybersecurity Rule

Pillsbury Winthrop Shaw Pittman LLP on

In recent guidance, the Department of Justice made clear that it will very rarely grant an extension of registrants’ deadline to disclose material cybersecurity incidents under the SEC’s Final Rules. Under the Securities and...more

Foley & Lardner LLP

What Every Multinational Company Needs to Know About...Implementing an International Compliance Program (Part III)

Foley & Lardner LLP on

We have received several requests for a list of the compliance policies that make sense for every multinational company. So, as a follow-up to our earlier two posts providing “twelve steps to international compliance” (see...more

White & Case LLP

Key Considerations for Updating 2023 Annual Report Risk Factors

White & Case LLP on

With the 2023 annual report season upon us, it is time for companies to take stock of risk factors for 10-Ks and 20-Fs, and consider whether recent economic, political, technological, and regulatory developments have had (or...more

Hudson Cook, LLP

New York DFS Finalizes Amendments to Cybersecurity Regulations

Hudson Cook, LLP on

On November 1, 2023 the New York Department of Financial Services ("DFS") released amended cybersecurity regulations ("Regulations"). These changes will impose additional controls, demand more frequent risk assessments, and...more

White & Case LLP

The SEC’s Charges Against SolarWinds and its Chief Information Security Officer Provide Important Cybersecurity Lessons for Public...

White & Case LLP on

On October 30, 2023, the US Securities and Exchange Commission ("SEC") announced that it filed charges against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer ("CISO") in connection...more

Morrison & Foerster LLP

A New Frontier for SEC Cybersecurity Enforcement? The SEC Charges SolarWinds and its CISO with Securities Fraud

Morrison & Foerster LLP on

Earlier this week, the SEC accused SolarWinds Corporation (“SolarWinds” or the “Company”) and its Chief Information Security Officer (“CISO”) of committing scienter-based securities fraud, among other violations, for...more

BCLP

SEC Brings Landmark Cybersecurity Disclosure Lawsuit Against Solarwinds and Its CISO

BCLP on

On October 30, 2023, the SEC filed charges against SolarWinds Corp. and its chief information security officer (CISO), alleging: ..Failures to disclose known cybersecurity vulnerabilities affecting the company’s “crown...more

Seward & Kissel LLP

SEC Updates for the Upcoming 2022 Annual Reports on Form 10-K and Form 20-F

Seward & Kissel LLP on

The U.S. Securities and Exchange Commission (the “SEC”) has adopted amendments and updated disclosure requirements that are to be included in a reporting company’s annual report on Form 10-K or 20-F. The SEC has also proposed...more

Reveal

A Guide to Efficient Data Remediation for Law Firms in 2023

Reveal on

Data is like the mail: it just keeps coming in, day after day. Storing and maintaining it is a never-ending process. Excess data can slow down operations, diminishing a law firm’s productivity, profitability, and public...more

Holland & Knight LLP

NYDFS Proposes Amendments to Cybersecurity Regulation

Holland & Knight LLP on

The New York Department of Financial Services (NYDFS) on Nov. 9, 2022, released Proposed Amendments to its Cybersecurity Regulation. The NYDFS Cybersecurity Regulation was one of the first laws requiring companies to comply...more

Smith Anderson

Marriott Investor’s Security Fraud Claims Arising from Data Breach Rejected by Fourth Circuit

Smith Anderson on

The Fourth Circuit dismissed an investor’s lawsuit against a hotel chain that had been subject to a data breach, ruling that the company had not made false or misleading public statements about its protection of customer...more

Holland & Knight LLP

The Impact of Cybersecurity Regulations on the Financial Services Industry in 2022

Holland & Knight LLP on

Following the SolarWinds and the Colonial Pipeline cyberattacks, the Biden Administration emphasized a shift toward mandatory cybersecurity requirements. Throughout 2021, government agencies issued new cybersecurity guidance,...more

Thomas Fox - Compliance Evangelist

Compliance Into The Weeds - Ransomware Attacks and Internal Controls

Thomas Fox - Compliance Evangelist on

Compliance into the Weeds is the only weekly podcast that takes a deep dive into a compliance-related topic, literally going into the weeds to more fully explore a subject. Today, Matt and I take a deep dive into the...more

King & Spalding

OFAC Puts Virtual Currency Industry On Notice

King & Spalding on

Guidance Demonstrates OFAC’s Expectations for Sanctions Compliance by Cryptocurrency Industry - On October 15, 2021, the Office of Foreign Assets Control (“OFAC”) of the U.S. Department of the Treasury published Sanctions...more

Eversheds Sutherland (US) LLP

Federal Banking Regulators Shine Light Again on Third-Party Risk Management

Eversheds Sutherland (US) LLP on

Federal banking regulators have again demonstrated their focus on bank oversight and management of risk from third party relationships through a series of guidance and proposed guidance published in the third quarter of 2021....more

Pietragallo Gordon Alfano Bosick & Raspanti,...

[Webinar] Privacy, Data and Cyber Security: The Current Legal Landscape - November 11th, 12:00 pm - 1:00 pm EST

Pietragallo Gordon Alfano Bosick & Raspanti,... on

Companies and consumers alike are under perpetual assault from bad actors as IoT, work from home, and cloud migration – all intended to improve productivity – have expanded the cyber attack surface. The continually evolving...more

Nossaman LLP

How to Prevent an OFAC Sanction When Responding to a Ransomware Attack

Nossaman LLP on

A ransomware attack is a major threat affecting all sectors of business, including healthcare. Organizations typically follow state and federal privacy laws as part of their ransomware prevention and response measures....more

Holland & Knight LLP

SEC Issues First-Ever Penalties for Deficient Cybersecurity Risk Controls

Holland & Knight LLP on

The U.S. Securities and Exchange Commission (SEC) has launched a stunning salvo across the bows of public companies with its announcement of civil monetary penalties and a cease-and-desist order against First American...more

NAVEX

Strengthening US Cybersecurity: Impacts of the Executive Order

NAVEX on

An executive order was signed on May 12, directing the federal government to overhaul its approach to cybersecurity. Corporate compliance and risk management professionals should consider this order carefully — because, in...more

Society of Corporate Compliance and Ethics...

[Virtual Event] Technology and Compliance Conference - June 24th, 8:55 am - 3:30 pm CDT

Society of Corporate Compliance and Ethics... on

How to ensure emerging technologies help rather than hurt your organization - Technology represents the classic double-edged sword for compliance and ethics professionals. When properly utilized, it can be a vital tool,...more

Thomas Fox - Compliance Evangelist

Fraud Eats Strategy - The Third Line: The Critical Role of Internal Audit in Cyber Defense

Thomas Fox - Compliance Evangelist on

Cybersecurity is at the top of most organizations’ list of critical risks and is often cited by C-suite executives and Board Members as their gravest concern. Threats that are this complex and amorphous require strong...more

59 Results
 / 
View per page
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide